The telco believes the customers' personally identifiable information (PII) was used to "unlock" phones so that the devices could be activated with other telco providers.
"...employees of one of our service providers violated privacy and security by accessing your account...your social security number and possibly date of birth were viewed... ."TITLE
- Mobile telco notification to subscribers
The notification letter states the insider data thefts occurred between April 9-21, 2014 but it is unclear how they were detected. Organizations seeking to proactively detect privacy data breaches and identity theft, even by authorized users, can utilize low-cost on-demand SaaS analytics services.
Download a white paper on privacy data breach and identity theft detection. Learn how to proactively identify unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) AT&T Warns Customers About Data Breach - www.ThreatPost.com, 06/17/2014